Install RNA Virtual Scanner Appliance

The virtual scanner can be installed on any computer (host) with the required resources. The virtual scanner is intended to be hosted on a client’s VMware, Hyper-V or VirtualBox virtualization platform. Amazon Web Services (AWS) AMI is also supported.

NOTE: If your organization does not have one of the recommended virtualization platforms such as Hyper-V, VMware or VirtualBox

Install and activate the RNA virtual scanner appliance by performing the following steps (see below for detailed instructions):

  1. Download the RNA virtual scanner appliance.
  2. Deploy the virtual scanner on your virtualization environment.
  3. Configure your network RNA profile for a static IP (if necessary).
  4. Activate the virtual scanner appliance.

Host System Requirements

This section describes the requirements necessary to host the RNA virtual scanner appliance image.

Supported Virtualization Platforms

Host Operating System Version Virtualization Platform (Hypervisor) Virtual Scanner Appliance File
Windows Server 2012 and later Hyper-V Role Microsoft Hyper-V (VHDX)
VMware ESXi Server 5.0 and later Native VMware ESXi (OVA)
Windows Desktop / Laptop 8.1 and later VMware Workstation 10.x and later
Oracle VirtualBox 4.2 and later		 VMware ESXi (OVA)
macOS Big Sur and later VMware Fusion 6.x and later
Oracle VirtualBox 4.3 and later		 VMware ESXi (OVA)
Linux Ubuntu 20.04 Desktop Oracle VirtualBox 4.3 and later VMware ESXi (OVA)

Minimum Hardware Requirements

Component Requirement
VM Hardware Version VMware Virtual Machine Hardware Version 7.0 or Later
Hyper-V Generation 1
CPU Intel or AMD x86 processors, 2 or 4 CPUs, 2 GHz or higher
Memory 4 GB RAM (Minimum)
Hard Disk 60 GB free space
BIOS Virtualization Technology BIOS Virtualization Technology must be enabled. By default, this setting is not enabled on most laptops.
Peer Images Other VMware, Hyper-V or VirtualBox images may run alongside the RNA on the host system as long as two processors, 2GB of RAM, and 10Mbps of bandwidth are available to the RNA at all times.
Network Location For optimal results, the virtual scanner should be hosted on a computer near the internet gateway (the router with one side connected to your private network, and the other side connected to the internet). To protect from outside access, the host should be located on the protected side of the perimeter security device (a network component that monitors ports and accepts or rejects communications through those ports).
TIP: It is recommended that the virtual scanner be hosted on a machine in a controlled access location due to the sensitivity of the data collected.
Physical Connections & Ports Host system network configuration should be a Cat 5 or above network cable with a network connection speed (throughput) of 100 MB or above.

The Virtual Scanner establishes a secure connection with the Fortra Secure Network Operation Center (SNOC) over Port 443 (HTTPS) or Port 22 (SSH), which allows internal testing on your network.
NOTE: If your location uses an application-based proxy (a proxy server, firewall or a perimeter security device that filters and inspects internet traffic) and you experience difficulty connecting to Fortra for activation, call Technical Support.

Other considerations for macOS: The virtual machine’s available bandwidth is limited by default. If this limitation is exceeded upon initiating a scan, a dialog box displays requesting permission to grant more bandwidth throughput to the virtual machine. Accept the request for the virtual scanner to function optimally.

Download RNA

The following instructions describe how to download the RNA virtual scanner appliance file.

To download the virtual scanner appliance:

  1. Open Fortra VM.
  2. From the navigation menu, select Scan Settings > Scanners.

  3. Select the Appliance Tokens tab.

  4. Under Virtual Scanners Download, select the appropriate file type:
    1. OVA image for VMware or VirtualBox
    2. Hyper-V image for Windows Server Hyper-V role
    3. AMI for Amazon Web Services (AWS). This download will redirect to the AWS Marketplace to subscribe to the AMI and add to your AWS account.
  5. Save the VHDX or OVA file to your local drive.

Deploy RNA

The following instructions describe how to deploy the RNA virtual scanner appliance on your virtualization environment.

Select the applicable virtualization platform:

  1. Log in to your VMware ESX Server using the vSphere web client (or VMware Player, Workstation, or Fusion application).
  2. From the vSphere client window, select File > Deploy OVF Template.
  3. On the Source page, browse to the downloaded FrontlineVirtualRNA.ova file and then select Next.
  4. On the OVF Template Details page, select Next.

  5. On the Name and Location page, optionally enter a unique name for the scanner. If applicable, select the folder location or data-center for the virtual scanner and then select Next.

    NOTE: If the vSphere Client is connected directly to an ESX/ESXi host, the option to select the folder location does not appear. If connected directly to a ESX/ESXi host, skip to the Storage page.

  6. If applicable, on the Host / Cluster page, select the host or cluster for the virtual scanner and then select Next.

    NOTE: To scan the selected host or cluster, it must have access to the network.

  7. If applicable, on the Specific Host page, select the specific host for the virtual scanner and then select Next.

    NOTE: This page appears only if the destination is a resource pool associated with a cluster with DRS disabled or in manual mode. If not applicable, skip to the Storage page.
  8. On the Storage page, select where to store the files for the deployed virtual scanner and then select Next.
    9. NOTE: If no external storage is configured, only local storage will be available.

  9. On the Disk Format page, select the required format for virtual machines and then select Next.

    NOTE: Thin provisioning lets you create sparse files with blocks that are allocated upon first access, which allows the datastore to be over-provisioned. The sparse files can continue growing and fill the datastore. If the datastore runs out of disk space while the virtual scanner is running, it can cause the virtual scanner to stop functioning.
  10. On the Network Mapping page, select the destination network you want to scan and then select Next.
    11. NOTE: If you are using VMware Fusion or Workstation, verify that the network connection type is set to Bridged.
  11. On the Ready to Complete page, select Finish.
  12. On the vSphere client window, right-click the virtual scanner on the left panel, and then select Power > Power On.
  13. Right-click the scanner again, and then select Open Console.
    14. NOTE: If prompted with a GNU Grub screen, click within the console and select Enter to select the default option.

The RNA virtual scanner appliance will boot into a console. The scanner may take a few minutes to start.

If Dynamic Host Configuration Protocol (DHCP) is in use on the network, the scanner should automatically connect to the network and the System Status: RNA Link field will indicate the scanner status. Online displays after the RNA is successfully activated and able to connect with Fortra VM, prior to successful activation the status will display as Offline. See the Internet Link field to determine general internet connectivity. If the virtual scanner is unable to use DHCP to connect, create a static IP network profile.

NOTE: If you need to create a network profile with a static IP, continue to Configure Network Profile. If the scanner is online, skip to Activate RNA.
  1. Double-click the downloaded FrontlineVirtualRNA.ova file.
  2. The first time this file is invoked, an Import Virtual Appliance window displays. Select Import. The FrontlineVirtualRNA scanner will appear, powered off, in the left pane of the Oracle VM VirtualBox Manager.
  3. Select the virtual scanner, and then select Start to power it on. The RNA virtual scanner appliance will boot into a console. The scanner may take a few minutes to start.

  4. Select the new VM and go to Settings > System. Under the Extended Features section, ensure the check box for Enable EFI (special OSes only) is checked. Two banner messages will display regarding keyboard and mouse integration. Dismiss these messages.

    IMPORTANT: If the VM displays an error reading " FATAL: No bootable medium found! System halted.", you must click on the new VM and navigate to Settings > System. Under the Extended Features section, ensure the checkbox for Enable EFI (special OSes only) is selected.
    If the RNA starts up and displays a login prompt instead of the standard RNA interface, perform the following:
    • First attempt to cycle through different ttys. The GUI is typically on ttys2, use CTRL + ALT+ F2 if the login prompt is on tty1.
    • If that isn't successful, power off the VM and navigate to Settings > Display . Under the Graphics Controller, VBoxVGA is likely selected by default. Change the selection to VMSVGA and power on the RNA to see if the RNA GUI is brought up. If not, power off the RNA and try VBoxSVGA, power it on and see if the issue of the GUI display is resolved.

  5. Click within the virtual scanner display to activate mouse capturing, and then select Capture.

If Dynamic Host Configuration Protocol (DHCP) is in use on the network, the scanner should automatically connect to the network and the System Status: RNA Link field will indicate the scanner status. Online displays after the RNA is successfully activated and able to connect with Fortra VM, prior to successful activation the status will display as Offline. See the Internet Link field to determine general internet connectivity. If the virtual scanner is unable to use DHCP to connect, create a static IP network profile.

NOTE: If you need to create a network profile with a static IP, continue with Configure Network Profile. If the scanner is online, skip to Activate RNA.
  1. Log in to your Hyper-V Server and start the Hyper-V Manager.
  2. From the Actions panel, select New > Virtual Machine.
  3. Enter a name for your virtual machine (for example, FrontlineVirtualRNA), and then select Next.
  4. Select Generation 1 for the virtual machine generation, and then select Next.
  5. Enter 4096 MB for Start up memory, and then select Next.
  6. Select the host network adapter (virtual switch) the virtual scanner will use to access the network, and then select Next.
    7. NOTE: If a virtual switch is not available, you must create one to give the virtual scanner access to the network.
  7. Select Use an existing virtual hard disk, and then locate and select the VHDX file.
  8. Select Next, and then select Finish.
  9. Select the virtual machine.

  10. On the Action panel, select Start and then select Connect. The RNA virtual scanner appliance will boot into a console. The scanner may take a few minutes to start.

    NOTE: If you need to create a network profile with a static IP, continue with Configure Network Profile.

  11. Click within the virtual scanner display to activate mouse capturing, and then select Capture.

NOTE: For instructions on launching an AMI RNA instance, see Install and Set Up AWS AMI Scanning.
NOTE: For instructions on Azure, see Set Up An Azure Scanner.
IMPORTANT: Do not clone the vRNA before, or after, activating it. Cloning the vRNA may prevent successful communication between the vRNA and the Fortra VM platform.

Configure Network Profile

The following instructions describe how to configure the virtual scanner to use a static IP.

NOTE: If Dynamic Host Configuration Protocol (DHCP) is in use on your network, the RNA should automatically connect to the network and the RNA Field will indicate the scanner is "Online". If the virtual scanner is unable to use DHCP to connect, create a static IP network profile. Perform this step only if a network profile with a static IP needs to be created. If the scanner is already online, proceed to the Activate RNA step.

To configure the virtual scanner to use a static IP as indicated by the System Status: Internet Link field

  1. From the RNA console, select Edit under Network Status.

  2. From the drop-down list, select Static.

  3. Enter the following information (consult with your IT department for this information):

    1. IP Address - The IP address for the virtual scanner.
    2. Netmask - The subnet mask for the virtual scanner.
    3. Gateway - The IP address for the gateway device available to the virtual scanner.
    4. DNS Server - The IP address for the DNS server available to the virtual scanner.

  4. Select Save.

The virtual scanner should now connect to the network, as indicated by the System Status: RNA Link field. Verify the virtual scanner's connectivity using the "status" command because it is more exhaustive than the Online/Offline field after an IP change.

NOTE: If the scanner is still offline, contact Fortra Technical Support.

Activate RNA

To activate your virtual scanner

  1. Once the scanner has network access, leave the RNA virtual scanner appliance console running.

  2. Open Fortra VM.

  3. From the navigation menu, select Scan Settings > Scanners.

  4. Select the Appliance Tokens tab. The Appliance Tokens page will indicate the total number of activations available.

    NOTE: If you do not have any activations available, contact Fortra Technical Support.

  5. Select New Token to generate a new activation token.

  6. On the RNA virtual scanner appliance console, enter the token in the Enter your activation key box.

  7. Select Activate RNA.

  8. Once activated, you will see the message, "Activation Successful: This device is ready to use." You are now ready to run your first scan.
    See related: Create and Run Scans.

Refer to Virtual RNA Troubleshooting for additional guidance and support.

NOTE: If the virtual RNA is installed on a workstation, the workstation will need to remain powered on and have network connectivity for any scans to run.

For information regarding connectivity issues and troubleshooting, see Virtual RNA Troubleshooting